Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/110C264A02D911EFB9B5F51D017001B1.roa
File: 110C264A02D911EFB9B5F51D017001B1.roa (raw, json)
Hash identifier: c4bO9Kki4ZvAirwrMdQSCHgXeWJoI754cr8b7PmApIs=
Subject key identifier: 0D:70:79:C5:60:E7:F0:D3:E1:EC:50:32:32:28:4D:7B:23:E2:C8:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B03D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/110C264A02D911EFB9B5F51D017001B1.roa
Signing time: Thu 25 Apr 2024 07:54:39 +0000
ROA not before: Thu 25 Apr 2024 07:54:36 +0000
ROA not after: Sun 02 Feb 2025 07:54:36 +0000
asID: 132839
IP address blocks: 154.213.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 May 2024 00:05:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45117 (0xb03d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:54:36 2024 GMT
Not After : Feb 2 07:54:36 2025 GMT
Subject: CN=662a0c3f-70c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:26:30:df:77:10:a9:ad:4b:2a:51:fb:77:
a9:33:a8:3f:84:30:4d:cc:f1:a7:bc:ff:6d:bf:ae:
8f:de:1c:3d:bc:58:95:16:b2:4f:5e:f8:54:50:21:
18:22:c8:69:25:1b:39:e8:8c:9a:35:be:4b:da:84:
ae:5e:af:02:c9:9d:d6:ed:f7:76:8a:5a:2b:b7:32:
a0:f9:57:a3:da:58:25:e8:55:52:8a:23:a0:72:61:
92:5e:1d:b7:50:c1:58:04:f6:ef:24:de:c4:88:bc:
29:00:3a:eb:9a:9b:91:38:e2:59:29:03:67:df:7c:
0c:2a:0a:5a:21:4c:5a:5f:69:2c:25:cb:47:7e:b5:
81:c8:e6:6a:7f:af:c3:6c:cf:33:85:98:fe:fa:dd:
de:40:58:2f:03:8b:77:44:03:11:69:8a:0a:cd:d9:
9d:e1:ae:0c:58:86:9b:02:1a:8f:74:e1:a1:f6:00:
80:38:d9:12:66:43:f5:d0:15:05:04:58:4f:84:94:
8c:4f:17:53:b7:77:6a:52:4c:07:57:2c:93:c6:1c:
1b:15:b0:08:b4:15:d5:93:c3:ca:15:b7:9a:08:b6:
b2:cf:89:e3:f2:d1:ac:fc:80:d2:dd:84:d4:e6:9b:
05:85:1b:2e:2f:09:07:85:4f:75:5c:9e:b1:be:61:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:70:79:C5:60:E7:F0:D3:E1:EC:50:32:32:28:4D:7B:23:E2:C8:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/110C264A02D911EFB9B5F51D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.224.0/19
Signature Algorithm: sha256WithRSAEncryption
c1:93:7d:0f:56:19:02:b2:64:5d:25:0c:a1:eb:99:a1:cb:ea:
d5:94:ab:b1:bb:67:ea:d1:5c:1c:93:74:99:4e:8b:be:27:4f:
78:fa:68:96:ba:00:84:1e:60:5a:0f:ce:c8:32:1a:a3:bd:6f:
cf:62:d0:f3:43:68:dc:36:b5:50:31:5f:79:87:6f:49:e8:37:
82:26:3b:3f:c9:c8:7d:20:ca:9a:ce:9c:9a:be:d0:8d:8d:17:
ff:cb:b0:17:77:57:2d:8e:58:1a:bb:fc:5a:57:3c:b1:bb:d5:
84:d8:c2:6e:56:36:eb:82:1a:8c:01:2b:b5:87:46:36:28:b7:
2a:ef:a3:67:f6:ef:74:72:93:79:71:bb:8f:57:88:67:96:b1:
de:98:46:ac:3e:75:19:9e:1e:ec:d8:aa:8b:45:2a:65:9a:01:
13:e4:a9:cf:bd:a8:4c:66:ed:2f:6a:9a:8d:85:3b:bf:66:e6:
dd:67:dd:c9:1e:8c:2a:a2:a6:64:6d:8b:4e:99:ce:e4:e5:88:
59:fd:cc:65:cd:03:4e:9e:b9:8e:a8:37:5b:61:83:5b:fd:98:
cc:b0:db:8d:f9:72:e2:bb:ee:89:88:bf:5b:ef:a7:53:46:3f:
05:f5:f0:33:4f:86:7b:b9:7b:55:01:04:cf:f2:1f:87:e2:ac:
e8:9b:5f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:11 2024 by rpki-client on console-fra.rpki-client.org